wolstech Posted April 27, 2014 Posted April 27, 2014 I somehow got myself suspended for malware...rax on Stevie. The malware was "Heuristics.Phishing.Email.SpoofedDomain"...I unsuspended myself and ran an AV scan on a backup, found nothing. Can an admin tell me what file this was for?
Krydos Posted May 1, 2014 Posted May 1, 2014 /home1/rax/skmaildb/alex4093_skxawng.lu_mail.skxawng.lu/INBOX/93638e5f492ba7f7fbfc05cd2005b7cf.eml
wolstech Posted May 1, 2014 Author Posted May 1, 2014 That'd be mail cache for a webmail client I run for somebody. For what it's worth, that is actually an accurate detection. The content is a phishing mail for customers of a German bank. Deleted.
Krydos Posted May 1, 2014 Posted May 1, 2014 Yeah, the system normally doesn't suspend for malware in somebody's inbox because it's hardly the account owners fault if someone mails them malware or phishing emails. However, since that was a webmail install the scanner didn't ignore it.
Recommended Posts